mirror of
https://github.com/wassname/flask-security.git
synced 2026-06-27 16:10:11 +08:00
Merge pull request #454 from jonafato/changelog-1.7.5
Add changelog for bugfix version 1.7.5
This commit is contained in:
Matt Wright
@@ -3,6 +3,26 @@ Flask-Security Changelog
|
||||
|
||||
Here you can see the full list of changes between each Flask-Security release.
|
||||
|
||||
Version 1.7.5
|
||||
-------------
|
||||
|
||||
Released December 2nd 2015
|
||||
|
||||
- Added `SECURITY_TOKEN_MAX_AGE` configuration setting
|
||||
- Fixed calls to `SQLAlchemyUserDatastore.get_user(None)` (this now returns `False` instead of raising a `TypeError`
|
||||
- Fixed URL generation adding extra slashes in some cases (see GitHub #343)
|
||||
- Fixed handling of trackable IP addresses when the `X-Forwarded-For` header contains multiple values
|
||||
- Include WWW-Authenticate headers in `@auth_required` authentication checks
|
||||
- Fixed error when `check_token` function is used with a json list
|
||||
- Added support for custom `AnonymousUser` classes
|
||||
- Restricted `forgot_password` endpoint to anonymous users
|
||||
- Allowed unauthorized callback to be overridden
|
||||
- Fixed issue where passwords cannot be reset if currently set to `None`
|
||||
- Ensured that password reset tokens are invalidated after use
|
||||
- Updated `is_authenticated` and `is_active` functions to support Flask-Login changes
|
||||
- Various documentation improvements
|
||||
|
||||
|
||||
Version 1.7.4
|
||||
-------------
|
||||
|
||||
|
||||
Reference in New Issue
Block a user